@elastic.io/component-commons-library - npm Package Compare versions

Comparing version 3.1.1 to 3.1.2

package.json

 {
   "name": "@elastic.io/component-commons-library",
-  "version": "3.1.1",
+  "version": "3.1.2",
   "description": "Library for most common component development cases",
@@ -44,5 +44,5 @@ "author": {
   "devDependencies": {
-    "@types/mocha": "9.0.0",
     "@types/chai": "4.3.0",
     "@types/chai-as-promised": "7.1.4",
+    "@types/mocha": "9.0.0",
     "@types/node": "16.9.6",
@@ -54,5 +54,2 @@ "@typescript-eslint/eslint-plugin": "4.30.0",
     "dotenv": "10.0.0",
-    "nock": "13.0.4",
-    "tslint": "5.11.0",
-    "tslint-config-airbnb": "5.11.2",
     "eslint": "7.32.0",
@@ -62,6 +59,9 @@ "eslint-config-airbnb-base": "14.2.1",
     "mocha": "9.2.2",
+    "nock": "13.0.4",
     "nyc": "15.1.0",
     "sinon": "11.1.2",
     "ts-node": "10.2.1",
-    "typescript": "4.4.3"
+    "tslint": "5.11.0",
+    "tslint-config-airbnb": "5.11.2",
+    "typescript": "^4.8.4"
   },
@@ -68,0 +68,0 @@ "repository": "elasticio/component-commons-library",

New alerts

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Network access

Supply chain risk

This module accesses the network.

Found 2 instances in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 18 instances in 1 package

Filesystem access

Supply chain risk

Accesses the file system, and could potentially read sensitive data.

Found 1 instance in 1 package

Fixed alerts

Deprecated

Maintenance

The maintainer of the package marked it as deprecated. This could indicate that a single version should not be used, or that the package is no longer maintained and any new vulnerabilities will not be fixed.

Found 1 instance in 1 package

Major refactor

Supply chain risk

Package has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

261594

increased by213.54%

Number of package files

95

increased by400%

Lines of code

5748

increased by292.35%

Number of medium maintenance alerts

0

decreased by-100%

Worsened metrics

Number of low supply chain risk alerts

49

increased by4800%

Number of medium supply chain risk alerts

3

increased by200%

No dependency changes